Police arrested a 20-year-old suspect in central Hesse connected to the December data breach of hundreds of politicians. https://www.thelocal.de/20190108/suspect-20-arrested-over-massive-german-politician-data-hack
Qualys has sent out a security advisory describing three stack-overrun vulnerabilities in systemd-journald.
Y2K 2.0?? The year-2038 apocalypse is now closer to the present than the year-2000 problem was when it made headlines
Samsung Phone Users Perturbed to Find They Can't Delete Facebook.
According to a Hacker News comment (2nd link), it should be possible to delete application via cable using ADB. I didn't try it.
The Australian government issued a warning regarding WhatsApp hoax that is promoting installation of a ‘gold’ version of the application. Installation leads to a malware infection.
After Motherboard's article about US carriers selling customers location data, senators call on FCC to investigate T-Mobile, AT&T, and Sprint.
The story of how an I.T. consultant gave the F.B.I. the secret encryption keys in 2011 for a custom SIP based communication system came out during the Trial of Mexican drug lord Joaquín "El Chapo" Guzmán
El Chapo also spyied on his wife and fiancées using Flexi-spy spyware which provider was subpoenaed by FBI.
Singapore's ministry of communications and information published "Public Report of the Committee of Inquiry (COI) into the cyber attack on Singapore Health Services Private Limited Patient Database".
If you are into incident response, this report is a really great resource.
Back in 2015, Facebook filed patent request describing how to track user relations using the dust on camera lens.
If your computer relies on BitLocker in TPM mode (boot without PIN), it is possible to extract cryptographic material data out of your computer and decrypt the hard drive.
Additional information: https://www.forensicswiki.org/wiki/BitLocker_Disk_Encryption
Zerodium platform wants to pay you $2,000,000 for remote iOS jailbreaks, $1,000,000 for WhatsApp / iMessage / SMS / MMS remote code execution exploit, and $500,000 for Chrome remote exploit.
Security engineer Chris Palmer published blog about the state of software security in 2019.
The NSA has so far open-sourced 32 projects on Github, as part of its Technology Transfer Program.
Research paper on a new hardware-agnostic side-channel attack which is targeting the operating system page cache was published.
Interesting paper from the last October a long-term secure storage proposal:
"ELSA: Efficient Long-Term Secure Storage of Large Datasets".
Posted on 13 January 2019 sourced with permission from malgregator.com
Some sources adapted for on-air readability.